125 lines
4.5 KiB
Python
125 lines
4.5 KiB
Python
#--require-config tls-api-key
|
|
#--require-config tls-api-certificate
|
|
|
|
import http.server, json, ssl, threading, uuid, urllib.parse
|
|
import flask
|
|
from src import ModuleManager, utils
|
|
|
|
_bot = None
|
|
_events = None
|
|
_log = None
|
|
class Handler(http.server.BaseHTTPRequestHandler):
|
|
timeout = 10
|
|
def _handle(self, method, path, data="", params={}):
|
|
_, _, endpoint = path[1:].partition("/")
|
|
endpoint, _, args = endpoint.partition("/")
|
|
args = list(filter(None, args.split("/")))
|
|
|
|
response = ""
|
|
code = 404
|
|
|
|
hooks = _events.on("api").on(method).on(endpoint).get_hooks()
|
|
if hooks:
|
|
hook = hooks[0]
|
|
authenticated = hook.get_kwarg("authenticated", True)
|
|
key = params.get("key", None)
|
|
key_setting = _bot.get_setting("api-key-%s" % key, {})
|
|
permissions = key_setting.get("permissions", [])
|
|
|
|
if not authenticated or path in permissions or "*" in permissions:
|
|
if path.startswith("/api/"):
|
|
event_response = None
|
|
try:
|
|
event_response = _events.on("api").on(method).on(
|
|
endpoint).call_unsafe_for_result(params=params,
|
|
path=args, data=data, headers=dict(self.headers))
|
|
except Exception as e:
|
|
_log.error("failed to call API endpoint \"%s\"",
|
|
[path], exc_info=True)
|
|
code = 500
|
|
|
|
if not event_response == None:
|
|
if _bot.get_setting("rest-api-minify", False):
|
|
response = json.dumps(event_response,
|
|
sort_keys=True, separators=(",", ":"))
|
|
else:
|
|
response = json.dumps(event_response,
|
|
sort_keys=True, indent=4)
|
|
code = 200
|
|
else:
|
|
code = 401
|
|
|
|
self.send_response(code)
|
|
self.send_header("Content-type", "application/json")
|
|
self.end_headers()
|
|
self.wfile.write(response.encode("utf8"))
|
|
def _safe_handle(self, method, path, params):
|
|
_bot.lock.acquire()
|
|
try:
|
|
self._handle(method, path, params)
|
|
except:
|
|
pass
|
|
finally:
|
|
_bot.lock.release()
|
|
|
|
def _decode_params(self, s):
|
|
params = urllib.parse.parse_qs(s)
|
|
return dict([(k, v[0]) for k, v in params.items()])
|
|
|
|
def do_GET(self):
|
|
parsed = urllib.parse.urlparse(self.path)
|
|
get_params = self._decode_params(parsed.query)
|
|
self._handle("get", parsed.path, params=get_params)
|
|
|
|
def do_POST(self):
|
|
parsed = urllib.parse.urlparse(self.path)
|
|
post_params = self._decode_params(parsed.query)
|
|
content_length = int(self.headers.get("content-length", 0))
|
|
post_body = self.rfile.read(content_length)
|
|
self._handle("post", parsed.path, data=post_body, params=post_params)
|
|
|
|
@utils.export("botset", {"setting": "rest-api",
|
|
"help": "Enable/disable REST API",
|
|
"validate": utils.bool_or_none})
|
|
@utils.export("botset", {"setting": "rest-api-minify",
|
|
"help": "Enable/disable REST API minifying",
|
|
"validate": utils.bool_or_none})
|
|
class Module(ModuleManager.BaseModule):
|
|
def on_load(self):
|
|
global _bot
|
|
_bot = self.bot
|
|
|
|
global _events
|
|
_events = self.events
|
|
|
|
global _log
|
|
_log = self.log
|
|
|
|
if self.bot.get_setting("rest-api", False):
|
|
self.httpd = http.server.HTTPServer(("", 5000), Handler)
|
|
self.httpd.socket = ssl.wrap_socket(self.httpd.socket,
|
|
keyfile=self.bot.config["tls-api-key"],
|
|
certfile=self.bot.config["tls-api-certificate"],
|
|
server_side=True)
|
|
self.thread = threading.Thread(target=self.httpd.serve_forever)
|
|
self.thread.daemon = True
|
|
self.thread.start()
|
|
|
|
def unload(self):
|
|
self.httpd.shutdown()
|
|
|
|
@utils.hook("received.command.apikey", private_only=True)
|
|
def api_key(self, event):
|
|
"""
|
|
:help: Generate a new API key
|
|
:usage: <comment> [endpoint [endpoint ...]]
|
|
:permission: api-key
|
|
:prefix: APIKey
|
|
"""
|
|
api_key = uuid.uuid4().hex
|
|
comment = event["args_split"][0]
|
|
self.bot.set_setting("api-key-%s" % api_key, {
|
|
"comment": comment,
|
|
"permissions": event["args_split"][1:]
|
|
})
|
|
event["stdout"].write("New API key ('%s'): %s" % (comment, api_key))
|